$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft File: US3AbkHAiZokofyIXrNG5FMH80c.mft (raw, json) Hash identifier: 5rxp7DUyoWD3fAp70RbIvJc2gwz7fqa8DodF1VZoSF4= Subject key identifier: 51:0A:3E:FD:68:A8:19:E8:DA:7D:76:BB:DE:D0:D9:DE:76:A1:88:C4 Authority key identifier: 51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 Certificate issuer: /CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Certificate serial: 093B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft Manifest number: 0935 Signing time: Fri 04 Apr 2025 20:26:12 +0000 Manifest this update: Fri 04 Apr 2025 20:26:11 +0000 Manifest next update: Fri 11 Apr 2025 20:26:11 +0000 Files and hashes: 1: US3AbkHAiZokofyIXrNG5FMH80c.crl (hash: Yws3/KpXJztnr0EkttI2zfQKxFG2zl3COlgLOuzAP90=) 2: 9EEA3006979411EA8C6FC25AC4F9AE02.roa (hash: S4ZaaJwKZSnUQdUJjzEBewIqlA4hqhU0xKL1nfod00M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2363 (0x93b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA4F2 Validity Not Before: Apr 4 20:26:11 2025 GMT Not After : Apr 11 20:26:11 2025 GMT Subject: CN=67f04063-255c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:60:ce:73:4c:46:ae:33:a5:9d:ae:cd:ff: d2:32:9f:90:73:93:4b:fa:a1:ad:a1:13:6d:df:10: 3f:a6:89:5f:00:44:82:01:cd:b9:6d:88:00:64:1d: f5:e1:af:ef:61:9d:dd:a1:e3:b4:7a:e1:d4:05:bb: 3c:a8:c6:61:9e:26:82:4f:ae:d4:6f:88:d2:1b:53: 1a:12:c1:a7:7f:b3:3f:59:88:a5:93:e7:f7:77:f5: ba:3c:17:be:c5:e9:51:66:0b:f2:6b:06:57:1d:b9: 6d:de:07:8f:7c:2c:4b:04:c9:1e:b0:8e:90:63:e6: 92:06:3c:e5:27:a4:36:b3:c9:b9:b9:86:c1:1b:96: d6:a9:6f:7c:29:3f:b1:7c:d1:38:6f:8f:d1:47:ec: 3c:35:a2:4a:5a:15:75:6b:74:24:0a:89:9e:20:9d: bd:4a:55:ca:9b:af:53:92:32:71:96:31:9c:8b:40: a3:2c:58:af:0f:a8:f0:18:a3:00:fb:91:05:96:cf: e8:3a:62:48:12:f0:82:16:90:67:00:d2:f1:91:a7: 32:e1:e2:27:b1:ea:9f:07:64:9f:3a:a6:e6:c6:09: 75:5b:c0:1e:b1:40:cb:b9:b3:a6:43:b6:87:99:bb: ca:80:6d:5f:fd:45:25:af:54:73:c1:06:de:95:b0: c6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0A:3E:FD:68:A8:19:E8:DA:7D:76:BB:DE:D0:D9:DE:76:A1:88:C4 X509v3 Authority Key Identifier: keyid:51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:e0:b0:4a:ab:33:21:a8:5f:0a:89:06:bf:66:cb:43:cb:ba: 77:ec:b8:96:33:ec:98:bf:ff:4b:57:80:d5:dc:9f:16:6e:2d: 68:c8:e1:2c:af:3a:32:eb:3b:fb:0b:01:97:0b:86:9c:1c:d9: 52:7c:ca:87:16:62:ba:c7:92:02:23:bd:b2:2a:59:73:fb:26: f7:d7:57:3f:40:8c:5a:2c:1e:dc:6e:c4:04:a1:76:c1:1e:9a: 5a:39:7a:df:af:70:06:1e:30:aa:2a:dd:3e:73:c0:e3:f1:e2: e8:29:5c:6d:da:8d:4d:8e:9f:8c:f5:d0:8b:cd:0e:13:64:46: 3a:fe:ac:63:3a:61:2f:b6:ab:d9:28:fd:59:09:52:67:92:71: 1b:7a:11:dc:26:7c:9c:35:f1:ae:e3:f7:b6:0b:da:e6:56:9f: 27:36:b5:97:6b:38:33:0c:2c:00:a5:12:4b:7e:67:d2:36:70: f9:80:da:88:20:70:ad:7e:43:ef:51:59:d9:1b:b8:81:4f:2a: 4b:98:29:8d:7c:73:ec:d9:c9:36:25:e4:a9:26:c9:7f:3f:ba: b9:a4:0a:5b:c7:54:6e:28:a6:bb:88:63:d2:05:25:aa:1e:81: a1:bb:96:80:d0:c0:ef:fe:c0:6e:2f:0b:fb:06:30:ee:06:6e: cc:83:90:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0RjIxMTAvBgNVBAUTKDUxMkRDMDZFNDFDMDg5OUEyNEExRkM4ODVFQjM0NkU0 NTMwN0YzNDcwHhcNMjUwNDA0MjAyNjExWhcNMjUwNDExMjAyNjExWjAYMRYwFAYD VQQDEw02N2YwNDA2My0yNTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEtgznNMRq4zpZ2uzf/SMp+Qc5NL+qGtoRNt3xA/polfAESCAc25bYgAZB31 4a/vYZ3doeO0euHUBbs8qMZhniaCT67Ub4jSG1MaEsGnf7M/WYilk+f3d/W6PBe+ xelRZgvyawZXHblt3gePfCxLBMkesI6QY+aSBjzlJ6Q2s8m5uYbBG5bWqW98KT+x fNE4b4/RR+w8NaJKWhV1a3QkComeIJ29SlXKm69TkjJxljGci0CjLFivD6jwGKMA +5EFls/oOmJIEvCCFpBnANLxkacy4eInseqfB2SfOqbmxgl1W8AesUDLubOmQ7aH mbvKgG1f/UUlr1RzwQbelbDG/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEKPv1o qBno2n12u97Q2d52oYjEMB8GA1UdIwQYMBaAFFEtwG5BwImaJKH8iF6zRuRTB/NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTRGMi8yQUVERUY5QTk3 OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWlab2tvZnlJWHJORzVGTUg4 MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTM0Fia0hBaVpva29meUlYck5HNUZNSDgwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTRGMi8yQUVERUY5QTk3OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWla b2tvZnlJWHJORzVGTUg4MGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY4LBKqzMhqF8KiQa/ZstDy7p37LiWM+yYv/9LV4DV3J8Wbi1oyOEs rzoy6zv7CwGXC4acHNlSfMqHFmK6x5ICI72yKllz+yb311c/QIxaLB7cbsQEoXbB HppaOXrfr3AGHjCqKt0+c8Dj8eLoKVxt2o1Njp+M9dCLzQ4TZEY6/qxjOmEvtqvZ KP1ZCVJnknEbehHcJnycNfGu4/e2C9rmVp8nNrWXazgzDCwApRJLfmfSNnD5gNqI IHCtfkPvUVnZG7iBTypLmCmNfHPs2ck2JeSpJsl/P7q5pApbx1RuKKa7iGPSBSWq HoGhu5aA0MDv/sBuLwv7BjDuBm7Mg5A3 -----END CERTIFICATE-----Generated at Sat Apr 5 10:20:17 2025 by rpki-client